Kelp DAO is set to transition its restaking token, rsETH, to the Chainlink oracle platform after experiencing a consequential cyberattack earlier this year. This decision emerges in response to a security breach in April, where hackers targeted platform vulnerabilities, leading to a loss of $292 million. Positioned at the forefront of decentralized finance, Kelp DAO continues to point to the LayerZero infrastructure as a significant factor in the incident.
How Did Hackers Exploit the System?
The security breach occurred on April 18, when criminals identified weaknesses in Kelp DAO’s bridge technology operating on LayerZero’s framework. Exploiting this gap, they stole 116,500 restaked ETH, eventually converting it into wrapped Ether through Aave v3, marking it as a substantial exploit within this year’s DeFi attacks.
Following the breach, LayerZero’s own evaluation suggested the root of the issue lay in Kelp DAO’s reliance on a single validator within its decentralized network. Despite their prior warnings against such a limited setup, Kelp DAO contends that operating with a single validator corresponds with LayerZero’s typical configuration.
“Following the recent LayerZero exploit, we have decided to migrate rsETH to Chainlink CCIP to ensure full security,” stated Kelp DAO.
Did LayerZero Warn About the Risks?
Kelp DAO argued that the single-validator setup was not only common but also previously accepted as secure by LayerZero. Discussions on the validator setup were held frequently, reinforcing Kelp DAO’s belief in its safety until the exploit occurred.
In response to this incident, LayerZero now plans to cease validating cross-chain messages from applications dependent on a single validator framework, advocating for a shift to multi-validator configurations for enhanced protection.
LayerZero’s CEO, Bryan Pellegrino, remarked, “Many of Kelp’s claims are simply false,” clarifying that the default setting was not single-validator but multi-DVN, altered by Kelp.
Pellegrino further detailed that the initial LayerZero model, created in partnership with Google, utilized multiple validators. Kelp’s manual adjustments, he suggested, contributed to the breach. Comprehensive third-party audits are anticipated to shed more light on these claims soon.
Additionally, there is speculation involving North Korean hacking groups in these severe DeFi breaches, including a separate, costly hack on Drift. Such incidents underline the growing necessity for more secure design in cross-chain and decentralized systems in the DeFi domain.
By embracing Chainlink’s advanced oracle platform, Kelp DAO aims to fortify its security framework, potentially restoring confidence and mitigating risks in its ecosystem. This move signals an essential shift towards more robust technological infrastructures to safeguard substantial assets within DeFi networks.
